$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa File: AS28481.roa (raw, json) Hash identifier: vJZEgq1IUDadFeIExfULbC7LxxYOBkBP8drm1zmoYAw= Subject key identifier: 87:C7:46:71:6E:2A:71:79:C6:FD:D3:4C:22:DD:A8:8D:25:34:ED:4F Certificate issuer: /CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Certificate serial: 76E2913BFF91DF1CA032D5FEE9DB0508C8B4A807 Authority key identifier: C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa Signing time: Fri 25 Jul 2025 04:05:01 +0000 ROA not before: Fri 25 Jul 2025 04:00:01 +0000 ROA not after: Fri 24 Jul 2026 04:05:01 +0000 asID: 28481 IP address blocks: 177.225.216.0/21 maxlen: 21 189.195.46.0/24 maxlen: 24 189.196.168.0/22 maxlen: 24 189.199.248.0/23 maxlen: 24 200.92.220.0/22 maxlen: 22 200.92.232.0/22 maxlen: 22 200.94.228.0/23 maxlen: 23 200.94.230.0/23 maxlen: 23 200.94.232.0/23 maxlen: 23 200.94.234.0/23 maxlen: 23 200.94.236.0/23 maxlen: 24 201.132.132.0/22 maxlen: 23 201.132.136.0/21 maxlen: 22 201.132.144.0/21 maxlen: 22 201.132.156.0/22 maxlen: 23 201.164.48.0/21 maxlen: 22 2806:260:1012::/47 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 05 Aug 2025 13:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e2:91:3b:ff:91:df:1c:a0:32:d5:fe:e9:db:05:08:c8:b4:a8:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Validity Not Before: Jul 25 04:00:01 2025 GMT Not After : Jul 24 04:05:01 2026 GMT Subject: CN=87C746716E2A7179C6FDD34C22DDA88D2534ED4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:55:dc:26:0c:5f:72:ba:ad:70:9f:3b:34: a2:41:3d:06:f9:2f:fa:d1:bf:d1:58:73:6b:4c:56: 27:e9:9d:65:d3:75:b4:bc:a9:42:9e:8c:58:85:1c: 90:f2:e2:1d:c8:bc:99:41:d0:8d:2e:c1:e0:e7:36: a7:76:1e:1f:f0:1e:72:cd:c1:8a:56:da:3c:af:7d: cc:f2:5f:fd:d7:bb:d1:cf:98:a9:be:a9:a5:59:4f: 0d:fc:27:f2:4c:1f:f2:1c:19:e7:fe:5e:ce:f5:21: d6:9d:ba:a7:48:b3:82:88:d2:5b:e3:53:24:bc:24: 2a:5e:ab:42:ab:e5:48:be:e7:00:41:8f:5e:a4:c6: f5:8d:46:f7:44:59:22:3a:95:18:a2:c2:6d:4c:56: 3e:f6:d2:24:37:64:4e:04:4c:f6:ee:96:62:41:4e: bb:d4:2c:51:59:89:87:87:2d:2e:12:3c:34:6c:01: 98:a0:36:b7:1d:af:3d:69:17:79:a6:56:ed:8f:23: 32:ab:01:ce:25:ef:5f:43:da:8c:56:65:8d:32:89: be:b5:7e:cb:12:78:e6:cd:0b:a5:fe:53:e1:35:89: fc:51:81:fb:a6:34:5f:ad:df:eb:c3:f6:84:55:41: ca:4c:ff:39:29:e9:9a:0c:5b:42:01:09:c1:72:f2: b2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C7:46:71:6E:2A:71:79:C6:FD:D3:4C:22:DD:A8:8D:25:34:ED:4F X509v3 Authority Key Identifier: keyid:C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.225.216.0/21 189.195.46.0/24 189.196.168.0/22 189.199.248.0/23 200.92.220.0/22 200.92.232.0/22 200.94.228.0-200.94.237.255 201.132.132.0-201.132.151.255 201.132.156.0/22 201.164.48.0/21 IPv6: 2806:260:1012::/47 Signature Algorithm: sha256WithRSAEncryption 23:b9:7e:36:ac:15:f5:70:29:b3:2e:b2:38:eb:4e:2f:7b:22: 2e:6d:2b:05:5b:04:fe:ef:e5:75:47:0e:c8:3e:f5:94:c7:46: 4f:99:33:2d:ca:c8:da:18:2f:f0:59:15:40:4a:0b:ac:a3:c8: 81:de:a5:2d:5f:74:a4:6d:8a:a7:83:6a:02:0a:a6:e7:fd:63: 8f:75:cf:a0:87:12:65:3e:6a:1c:fd:30:5f:3f:81:8a:75:3c: d2:fc:b1:75:f7:fd:fd:19:9e:48:b0:6d:f3:6c:f2:c8:24:d5: 8c:43:64:6f:04:52:57:ce:3f:21:75:e2:4d:df:6e:24:18:5e: 68:f8:7d:b0:18:ee:e1:7d:20:93:17:3a:48:99:ac:de:31:e0: 24:05:bc:61:83:77:92:a9:6d:75:36:76:6d:4c:68:dc:89:61: 15:b9:d8:12:11:d0:01:42:7c:ab:45:78:71:58:f5:7c:58:7a: b1:83:12:6b:8d:1f:52:de:66:1e:86:dd:f0:99:1e:4e:03:8d: 0f:c8:c5:d8:f8:5f:93:03:eb:a8:04:1e:5e:e1:3d:27:0d:53: c4:70:fc:d4:87:fb:f7:a9:74:8e:f9:3f:dd:86:0c:6b:1c:f6: 75:82:ba:af:a1:a9:9d:e9:32:92:46:f6:d9:c7:d8:35:b9:f1: 23:31:4b:74 -----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgIUduKRO/+R3xygMtX+6dsFCMi0qAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU4NkE5MDc2Q0RFNzNGRDg5NjQ2NDAxMEEzQ0UwOEU0 QzhGQzRDNTAeFw0yNTA3MjUwNDAwMDFaFw0yNjA3MjQwNDA1MDFaMDMxMTAvBgNV BAMTKDg3Qzc0NjcxNkUyQTcxNzlDNkZERDM0QzIyRERBODhEMjUzNEVENEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXlXcJgxfcrqtcJ87NKJBPQb5 L/rRv9FYc2tMVifpnWXTdbS8qUKejFiFHJDy4h3IvJlB0I0uweDnNqd2Hh/wHnLN wYpW2jyvfczyX/3Xu9HPmKm+qaVZTw38J/JMH/IcGef+Xs71IdaduqdIs4KI0lvj UyS8JCpeq0Kr5Ui+5wBBj16kxvWNRvdEWSI6lRiiwm1MVj720iQ3ZE4ETPbulmJB TrvULFFZiYeHLS4SPDRsAZigNrcdrz1pF3mmVu2PIzKrAc4l719D2oxWZY0yib61 fssSeObNC6X+U+E1ifxRgfumNF+t3+vD9oRVQcpM/zkp6ZoMW0IBCcFy8rKNAgMB AAGjggLvMIIC6zAdBgNVHQ4EFgQUh8dGcW4qcXnG/dNMIt2ojSU07U8wHwYDVR0j BBgwFoAUxYapB2zec/2JZGQBCjzgjkyPxMUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQzU4NkE5MDc2Q0RFNzNG RDg5NjQ2NDAxMEEzQ0UwOEU0QzhGQzRDNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNTg2QTkwNzZDREU3M0ZEODk2 NDY0MDEwQTNDRTA4RTRDOEZDNEM1LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODQ4MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjB2BggrBgEFBQcBBwEB/wRnMGUwUgQCAAEwTAMEA7Hh2AME AL3DLgMEAr3EqAMEAb3H+AMEAshc3AMEAshc6DAMAwQCyF7kAwQByF7sMAwDBALJ hIQDBAPJhJADBALJhJwDBAPJpDAwDwQCAAIwCQMHASgGAmAQEjANBgkqhkiG9w0B AQsFAAOCAQEAI7l+NqwV9XApsy6yOOtOL3siLm0rBVsE/u/ldUcOyD71lMdGT5kz LcrI2hgv8FkVQEoLrKPIgd6lLV90pG2Kp4NqAgqm5/1jj3XPoIcSZT5qHP0wXz+B inU80vyxdff9/RmeSLBt82zyyCTVjENkbwRSV84/IXXiTd9uJBheaPh9sBju4X0g kxc6SJms3jHgJAW8YYN3kqltdTZ2bUxo3IlhFbnYEhHQAUJ8q0V4cVj1fFh6sYMS a40fUt5mHobd8JkeTgOND8jF2PhfkwPrqAQeXuE9Jw1TxHD81If796l0jvk/3YYM axz2dYK6r6Gpnekykkb22cfYNbnxIzFLdA== -----END CERTIFICATE-----Generated at Fri Aug 1 18:22:26 2025 by rpki-client